US20060221921A1 - Routing transformation, security, and authorization for delegated prefixes - Google Patents
Routing transformation, security, and authorization for delegated prefixes Download PDFInfo
- Publication number
- US20060221921A1 US20060221921A1 US11/099,929 US9992905A US2006221921A1 US 20060221921 A1 US20060221921 A1 US 20060221921A1 US 9992905 A US9992905 A US 9992905A US 2006221921 A1 US2006221921 A1 US 2006221921A1
- Authority
- US
- United States
- Prior art keywords
- mobile router
- prefix
- mobile
- home
- prefixes
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/50—Address allocation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/668—Internet protocol [IP] address subnets
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W40/00—Communication routing or communication path finding
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W80/00—Wireless network protocols or protocol adaptations to wireless operation
- H04W80/04—Network layer protocols, e.g. mobile IP [Internet Protocol]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/005—Moving wireless networks
Definitions
- the invention relates to mobile networking and communications. Specifically, the invention relates to assigning prefixes to mobile routers.
- the Mobile IP Working Group of the Internet Engineering Task Force has developed routing support to permit IP nodes (hosts and routers) using either IPv4 or IPv6 to seamlessly “roam” among IP sub-networks and media types.
- the mobile IP method supports transparency above the IP layer, including the maintenance of active Transmission Control Protocol (TCP) connections and User Datagram Protocol (UDP) port bindings.
- TCP Transmission Control Protocol
- UDP User Datagram Protocol
- the Mobile IP Working Group is attempting to address deployment issues in Mobile IP and provide appropriate protocol solutions to address known deficiencies and shortcomings. For example, the wireless/cellular industry is considering using Mobile IP as one technique for IP mobility for wireless data.
- the Working Group is developing standards to deploy Mobile IP protocols in the wireless data context.
- IPv6 Internet Protocol Version 6
- IPv6 is the next generation IP protocol. Started in 1991, the specification was completed in 1997 by the IETF. IPv6 is backward compatible with, and is designed to fix the shortcomings of, its predecessor IPv4. Two notable shortcomings fixed by IPv6 relate to data security and the maximum number of user addresses. IPv6 increases the address space from 32 to 128 bits, providing for an unlimited (for all intents and purposes) number of networks and systems. It also supports quality of service (QoS) parameters for realtime audio and video. Originally called “IP Next Generation” (IPng), IPv6 is expected to slowly replace IPv4, with the two existing side by side for many years.
- IP Next Generation IP Next Generation
- Mobile IP for IPv6 Mobile IPv6
- Mobile IPv6 Mobile IPv6
- the mobile router would be the point of attachment to the Internet for a collection of subnets, which then could be populated with either fixed or mobile nodes.
- Passengers on a ship or on a train are examples of mobile nodes that might rely on a mobile router, but clearly many fixed nodes on the ship or train might also have the same reliance.
- Recent concerns about address ownership have undermined the previous confidence about whether the base protocol specifications are appropriate for mobile routers as well as mobile nodes.
- the Network Mobility (NEMO) Working Group of the IETF is concerned with managing the mobility of an entire network, which changes, as a unit, its point of attachment to the Internet, and thus its reachability in the topology.
- the mobile network includes one or more mobile routers which connect it to the global Internet.
- a mobile network is assumed to be a leaf network (it may be complex with many leaf networks embedded in it, so that the Mobile Router would carry traffic to and from those networks), i.e. it will not carry transit traffic. However, it could be multihomed, either with a single mobile router that has multiple attachments to the internet, or by using multiple mobile routers that attach the mobile network to the Internet.
- the NEMO Working Group's approach assumes that the network's movement needs to be completely transparent to the nodes inside the mobile network. This assumption will be made to accommodate nodes inside the network that are not generally aware of mobility.
- a basic approach for network mobility support is for each mobile router to have a Home Agent (HA), and use bidirectional tunneling between the mobile router and HA to preserve session continuity while the mobile router moves.
- the mobile router will acquire a care-of address from its attachment point similar to what is done for mobile nodes using mobile IP. This approach allows nesting of mobile networks, since each mobile router will appear to its attachment point as a single node.
- HA Home Agent
- FIG. 1 a block diagram illustrates the structure of a network according to the NEMO Working Group's described system in which a mobile node 100 and a mobile router 120 are in their home wireless network environment connecting to the Internet 10 .
- the mobile node 100 is at home on its home link with its home agent 110 .
- a mobile router 120 is at its home wireless location.
- the mobile router 120 provides routing for an access link, on which there is a fixed node 130 , and an access link for a fixed router 134 .
- the mobile router 120 a gateway to the Internet 12 , and a home agent 14 are routers that forward packets. They each may also use same dynamic routing protocol. There is a correspondent node 102 for the mobile node 100 , and a correspondent node 122 for the mobile router.
- Bindings are configured on the mobile node's home agent 110 and correspondent node to send and receive data traffic to and from the mobile node 100 .
- mobile router 120 moves away from its home link, it similarly updates its home agent 14 , and its correspondent node 122 regarding its new location.
- both mobile node 100 and the mobile router 120 use the NEMO protocol (RFC 3963) along with Mobile IPv6, except that there are further implications to the packet forwarding implementation of the mobile router 120 and home agent 14 for the mobile router 120 .
- the mobile router 120 and the home agent 14 for the mobile router use bidirectional tunnel to send and receive data between them.
- the mobile router 120 installs an encapsulation interface directed towards its home agent 14 when it detects that it is no longer within its home network. Through this interface the mobile router 120 forwards (reverse-tunnels) all packets not originated from the mobile router 120 towards its home agent 14 .
- the mobile router functions as if the it is a normal mobile node 100 .
- the packets get forwarded on the visited link, except if the packets are targeted to the home link, then they get reverse-tunneled to home agent.
- the mobile router 120 injects a default route and a network route of its home link, towards the reverse tunnel it creates pointing to its home agent 14 , in addition to a default route to the a default router used by the mobile router 120 on the visited link.
- the mobile router 120 , home agent 14 , and gateway at the visited link were running a dynamic routing protocol, the mobile router 120 redirects control traffic of this protocol towards the home agent, tunneling these packets through the reverse tunnel pointing to home agent 14 for the mobile router 120 .
- the dynamic routing protocol updates the routing state between the gateway at the visited location, the home agent 14 for the router, and the mobile router 120 .
- the home agent 14 keeps persistent information regarding the mobile router and its mobile network prefix(es), and injects routing entries into its table based on Binding Updates from the mobile router 120 .
- DHCP is a Configuration protocol and, in general relies, on the concept of “return routability”—meaning that if a mobile node can receive packets on a link to which it is connected, it is more-or-less authorized to use an address on that link.
- a router or entity that controls a superset of the prefixes assigned to the mobile router must explicitly allow the mobile router to use those prefixes, since the routing for the prefixes and all nodes contained there within can be manipulated and their traffic can be diverted, so the potential vulnerability to abuse is higher.
- the home agent Since the DHCPv6 server is likely to be a separate box on the network, the home agent has no way of determining whether the mobile router then using the prefix is actually allowed to do so (and hence change the routing characteristics of the prefix).
- the home agent assigns prefixes by the protocol semantics as explicitly defined herein.
- a mobile router is authorized to use an assigned prefix for the duration of validity of the binding.
- the home agent since it keeps track of the prefixes, can deduce when a request is received, and whether the relevant mobile router is the “owner” of the prefix being used.
- a system for prefix delegation with a pre-configured home agent, having a home address, and having a set of mobile router prefixes that are available to delegate to mobile routers.
- the transceiver of the home agent receives a prefix request option from a mobile router to request a prefix.
- the home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with the home address of the home agent, and sends the assigned prefix to the mobile router.
- the home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with the home address of the mobile router, and sends the assigned prefix to the mobile router.
- FIG. 1 is a block diagram that illustrates the structure of a prior art network according to the NEMO Working Group of the Internet Engineering Task Force;
- FIG. 2 is a flowchart illustrating the steps performed by a mobile router in one embodiment
- FIG. 3 is a diagram illustrating a mobile network prefix, p, and a mobile network node address derived from it, according to one embodiment
- FIG. 4 is a diagram illustrating an assigned mobile router prefix (HoA(p)) constructed from the mobile network node address of FIG. 3 .
- HoA(p) assigned mobile router prefix
- FIG. 5 is a diagram representing an example provisioning table for a prefix request option and a table for prefix delegation option according to one embodiment
- FIG. 6 is a flow diagram illustrating the steps preformed in a mobile phone embodiment
- FIG. 7 is a flow diagram illustrating the steps performed when a packet destined for mobile network node in one embodiment.
- FIG. 8 a flow diagram illustrates the steps performed during mobile router operation in one embodiment.
- This invention relates to mobile routers, or other nodes using the IPv6 Internet protocol for communication.
- a particular embodiment described herein is for mobile routers using the network mobility (NEMO) IETF protocol.
- NEMO network mobility
- the invention can also be used by non-mobile routers that need entire prefixes delegated to them, so that other nodes they serve can obtain addresses from that pool.
- the home agent is configured as described in the mobile IPv6 protocol, and also has functionality as described in NEMO IETF protocol, so that it can serve mobile routers and conform to the relevant signaling specifications.
- the home agent is be pre-configured with a set of IPv6 prefixes P ⁇ 1 ⁇ -P ⁇ n ⁇ , that are available to delegate to mobile routers.
- Delegation can be accomplished by, for example, manual configuration, routing protocol prefix assignment, or DHCPv6 prefix delegation, as defined in Droms-Thubert.
- the prefixes can be of any length.
- delegated prefixes it is customary for delegated prefixes to be of length 48 bits, (i.e. for a global unicast address, the high-order 48 bits represent (FPI TLA ID
- SLA ID Site-Level Aggregation identifier
- the mobile router may be configured according to IETF Mobile Internet Protocol version 6 (MIPv6) and NEMO protocol.
- MIPv6 protocol the mobile router and home agent may take advantage of pre-defined security associations used to protect their signaling.
- MIPv6 protocol IETF Mobile Internet Protocol version 6
- NEMO protocol e.g., IETF Mobile Internet Protocol version 6
- the mobile router and home agent may take advantage of pre-defined security associations used to protect their signaling.
- MIPv6 protocol e.g., IPsec to Protect Mobile IPv6 Signaling Between Mobile Nodes and Home Agents.
- a flowchart illustrates the steps performed by a mobile router in one embodiment.
- the mobile router sends a prefix request option, requesting a prefix, which may be of a selected length and type, and either public or private, step 200 .
- the home agent then assigns it a prefix, step 202 , either dynamically from a pool of prefixes, or statically through prior configuration, which will then be owned and usable by the mobile router's mobile network, for at least the length of the mobile router's binding.
- the home agent will include this information in a binding acknowledgment by providing a prefix delegation option, step 204 .
- FIG. 3 An example mobile network prefix, p, and a mobile network node address derived from it, is shown in FIG. 3 . If, for any reason, one prefix is insufficient, the home agent could also assign multiple prefixes by sending multiple prefix delegation options, and send alternate care of addresses, as defined by MIPv6.
- the mobile router's home address is address is appended with an SLA ID.
- the mobile network node's home address of 1:2:3:4: is then appended to configure the assigned prefix.
- FIG. 4 is a diagram illustrating an assigned mobile router prefix (HoA(p)) constructed from the high-order bits mobile network node address of FIG. 3 .
- the high-order bits of the mobile router's home address (or prefix) (which has been assigned 3ffe:1200:3000:1234::) is combined with the mobile network node (destination) address (or prefix) to produce a mobile router prefix (HoA(p)).
- the home agent may have a routing table entry for each mobile network prefix.
- this could soon produce a large, difficult to manage, routing table.
- this problem is solved by assigning a home address to the mobile router that is mapped from the mobile network prefix. Hence, each time a packet destined for a home network prefix is received, the home address will map it to the HoA(p), without needing a routing table entry.
- this prefix that is at least known within an individual provider or site used by mobile routers is used. This is the prefix to which mobile network prefix, p, is appended to create the mobile router prefix (HoA(p)). For most purposes, this prefix could be 64 bits.
- the mobile network prefix and home address may be both provisioned ahead of time and do not change.
- the HoA(p) is the mobile router's normal home address, which is generated by concatenating the mobile router prefix (MRP) for the home address, with the bits of the mobile network prefix, p, as the low-order host bytes of the home address.
- MRP mobile router prefix
- This method may preferable, since the home address already directly maps from the mobile network prefix. However, it may not be possible to provision a static prefix to each mobile router ahead of time.
- the mobile router has a normal home address, and needs to acquire a HoA(p) for the mobile router prefix being delegated to it, the home address sends a binding acknowledgment containing the new home address.
- the mobile router configures this as its (alternate) home address for the duration of the binding, and uses it to set up the bi-directional tunnel described in NEMO protocol.
- this leads to the issue of how to secure the signaling information, since the mobile router and home address do not have a pre-defined security association using the HoA(p). This issue is covered in the security section discussed below.
- each pool of prefixes preferably has a defined prefix length. It is possible for the home address to delegate multiple pools of prefixes of different lengths, but it would be necessary keep track of the length of each prefix, for instance in a table, so that mapping can be performed from incoming packets to the mobile network node to the HoA(p) of the mobile router. To accomplish this, it is preferable to pre-define how many high order bits of the mobile network node address are the prefix, which are to be placed in the low-order bits of the HoA(p).
- the home agent creates a mapping from the HoA(p) to the home address. Whenever traffic is sent to a mobile router having a particular HoA(p), the security association for the home address is used. Similarly, when the mobile router begins using the HoA(p) to send data, it uses its existing security association based on the home address to secure the data packets.
- a session key may be derived from the key used for the normal home address.
- the session key (SK(p)) will have a fixed duration lifetime, and is based on the HoA(p).
- the home agent can send the SK(p) to the mobile router in an option in the base address, along with the HoA(p) and the mobile network prefix, p, options.
- the home agent preferably owns the pool of prefixes being delegated; meaning, it has administrative responsibility for advertising, and ownership rights over, the routing of, those prefixes.
- the home agent delegates these rights to the mobile router for the duration of prefix ownership.
- the mobile router preferably always considers the prefix valid for the lifetime of the accepted binding, and no longer, just as the home address is preferably only used for the duration of said binding.
- the mobile router preferably considers these addresses and prefixes as usable only during the lifetime of the valid binding. This is especially the case in embodiments wherein the mobile network prefix, p, and HoA(p) may be recycled with a different mobile router when the original binding expires.
- the home agent has access to a provisioning table that lists prefixes to be delegated. Each group of addresses has the prefix length defined.
- FIG. 5 is a diagram representing an example provisioning table for a prefix request option, and an example provisioning table for a prefix delegation option.
- the home agent has pre-defined security associations with each mobile router. The only difference between the two tables is that the prefix delegation option contains a valid lifetime and a preferred lifetime added for the prefix. The valid lifetime contains the time, in seconds, that the prefix remains valid. The preferred lifetime contains the time, in seconds, that the prefix may be used to start new connections.
- a type field (bits 0 - 7 ) is used to designate the type of option (e.g., a type value of 7 may designate that the option is a prefix request option, and a type value of 8 may designate that the option is a prefix delegation option).
- a length prefix designates the length of the option (bits 8 - 15 ).
- a prefix type field (bits 16 - 23 ) may designate another value for the type of option (e.g., 1 may indicate no extra value type is intended, 1 may indicate that the option is global, 2 may indicate that the option is local, and 3 may indicate that the option is private).
- the prefix length (bits 24 - 31 ) may indicate the length of the prefix.
- a flow diagram illustrates the steps preformed in an embodiment of the invention used by a cellular or mobile phone.
- step 600 when the customer signs an account agreement, their information enters a customer relation management (CRM) database. Part of this information includes information regarding the network settings for their mobile unit.
- CCM customer relation management
- Authorization for service usage is programmed into authorization servers, step 602 .
- a prefix is assigned to the user, step 604 .
- the prefix comes from a pool of 40 bits, which is 3ffe:1200:30::, wherein each prefix in the pool is known to be 48 bits long (preferably, most delegated prefixes are this length), and it is represented as 3ffe:1200:3012::.
- the 64-bit prefix 3ffe:1200:3000:1234:: has been assigned to be the mobile router prefix. All mobile routers at this provider will use this prefix for at least part of their home address. This means the home address prefix (HoA(p)) is calculated to be 3ffe:1200:3000:1234:0000:3ffe:1200:3012.
- the mobile network prefix and home address will be stored in the database, as well as an IPsec key.
- the mobile network prefix and the IPsec key are stored in the mobile router, which, in this case, is located in a mobile phone handset.
- the home agent When the home agent boots up and initializes, it uses a database interface library to read configuration information from the customer database, step 610 .
- the home agent may load a table in memory with all of the mobile router home addresses, mobile node prefixes, security key etc.
- the database is queried for this information each time an incoming binding is received.
- This has the disadvantage that it slows down the MIPv6 process, but has the advantage that the home agent doesn't need to store information about all subscribers, only a fraction of whom will actually have an active binding.
- one embodiment may optimize by caching binding information in the home agent's memory after successful binding establishment, so that for example, fast handovers would be possible without doing database queries at each handover.
- the home agent Along with existing MIPv6 and NEMO protocol info, the home agent also loads the mobile router prefix from a stored configuration, as well as the prefix length information for the pool of prefixes as shown above.
- the mobile router After these initial configuration steps, the mobile router at some point will send a binding update with the R bit set and the prefix request option, step 610 .
- the home agent queries the database, finds the home address, mobile network prefix, and security key, along with any authorization info for mobile router services that are needed for authorization.
- the home agent sends a binding acknowledgement, step 612 . Since home address is the HoA(p) in this described embodiment, it simply uses home address. It also includes a prefix designation option with the mobile router prefix as described above.
- the home agent sets up a bidirectional tunnel with the mobile router, and sets up routing table entries and binding cache entries according to MIPv6 and NEMO protocols.
- packets are received by the home agent, after checking the binding cache and route table, it performs an additional check to see whether the prefix of the IPv6 destination is part of its mobile network prefix pool(s).
- This feature is implemented by adding a route table entry for each prefix pool, and giving the routing table entry a special flag, rt_mnp, which signifies that the code should branch to calculate the HoA(p), and encapsulate this packet to the mobile router.
- Another prefix length field for the mobile network prefix is added.
- the route table entry may have the prefix length of the pool of addresses; however the new mobile network prefix length specifies the number of bits of prefix to take from the original packet to construct HoA(p)
- a routing table entry for prefix 3ffe:1200:30:: is created with length 40 , the special flag rt_mnp, and mobile network prefix length 48 .
- the next hop address can be set to all 0s_it will be ignored anyway, as the next hop is calculated dynamically.
- this prefix is length 40 and covers the entire prefix pool.
- the prefix length in the entry is length 48 , because it refers to the length of the prefix that will be copied from the packet's destination address to create the HoA(p)—and that will include the additional byte that we assign to each mobile router's mobile network prefix.
- a diagram illustrates the steps performed when a packet destined for mobile network node 3ffe:1200:3012:c041:a:b:c:d arrives at the home address, step 700 .
- the packet does not match any entries in the binding cache.
- a longest-prefix match in the prefix table will match the first 40 bytes of the destination address with the entry created as described above, step 704 .
- the software code then branches to the implementation code of the invention, which constructs a next hop address by starting with the mobile router prefix, 3ffe:1200:3000:1234::, step 706 .
- the high 48 bits (we get this number from the mobile network prefix length in the router transport table entry) of the destination address is placed into the low 48 bits of the next hop address, step 708 .
- the intermediate bits, if any (in this example, 12), are all 0.
- this prefix is the same as the home address calculated when provisioning the account at creation time described above, since the same algorithm was used. However, this algorithm is implemented in the kernel (or possibly user space) and executes very quickly.
- the packet is passed back through the forwarding engine, step 710 , which recognizes the tunnel entry that was set up during the binding phase (according to the NEMO spec), and puts the packet into the tunnel, to be received by the mobile router.
- the advantage of this approach is that there could be thousands of mobile routers, each with thousands of mobile network nodes below them.
- the home agent does not need millions of routing table entries—it only needs to query the database when a binding update is received, maintain a cache of reasonable size to facilitate fast handovers, and have one routing table entry for the pool of mobile network prefixes.
- a flow diagram illustrates the steps performed during mobile router operation.
- the mobile phone the subscriber is provided (mobile router) is assigned in non-volatile memory the home address (e.g., 3ffe:1200:3000:1234:0000:3ffe:1200:3012), and shared secret for IPsec communication, along with other parameters needed by MIPv6 and NEMO protocol, step 800 .
- any cellular operations to set up an IPv6 channel happen first, step 802 .
- a binding update is constructed according to MIPv6 and NEMO protocol, step 804 .
- the prefix request option is added to the binding update request, step 806 .
- the mobile router receives back a binding update acknowledgement with a prefix delegation option containing the prefix 3ffe:1200:3012, step 808 .
- an optimization of the system could comprise sending the prefix length, even though the mobile router already has the prefix stored inside of the home address, and it could be derived.
- the mobile router now appends the SLA ID, in this case c041, to the prefix, step 810 , and advertises it as a prefix of length 64 in its router advertisements, step 812 .
- the mobile network node picks up this IPv6 address and configures its address using an ingress interface identifier of 1:2:3:4 and gets the address 3ffe:1200:3012:c041:a:b:c:d, step 814 .
- the mobile network node starts sending traffic to an IPv6-capable correspondent node in the Internet (note that neither the mobile network node nor the correspondent node need be aware of the mobility of the mobile router). This causes the routing steps described above with respect to home agent operation.
- the home agent encapsulates the packet to the mobile router's egress interface. When the mobile router receives it, it de-encapsulates it according to the NEMO protocol, and sends it to the ingress interface where the mobile network node receives it.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
A system is provided for prefix delegation with a pre-configured home agent, having a home address, and having a set of mobile router prefixes that are available to delegate to mobile routers. The transceiver of the home agent receives a prefix request option from a mobile router to request a prefix. The home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with at least a part of the home address of the home agent, and sends the assigned prefix to the mobile router. Alternatively, the home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with at least a part of the home address of the mobile router, and sends the assigned prefix to the mobile router.
Description
- The invention relates to mobile networking and communications. Specifically, the invention relates to assigning prefixes to mobile routers.
- The Mobile IP Working Group of the Internet Engineering Task Force (IETF) has developed routing support to permit IP nodes (hosts and routers) using either IPv4 or IPv6 to seamlessly “roam” among IP sub-networks and media types. The mobile IP method supports transparency above the IP layer, including the maintenance of active Transmission Control Protocol (TCP) connections and User Datagram Protocol (UDP) port bindings.
- The Mobile IP Working Group is attempting to address deployment issues in Mobile IP and provide appropriate protocol solutions to address known deficiencies and shortcomings. For example, the wireless/cellular industry is considering using Mobile IP as one technique for IP mobility for wireless data. The Working Group is developing standards to deploy Mobile IP protocols in the wireless data context.
- Internet Protocol Version 6 (IPv6) is the next generation IP protocol. Started in 1991, the specification was completed in 1997 by the IETF. IPv6 is backward compatible with, and is designed to fix the shortcomings of, its predecessor IPv4. Two notable shortcomings fixed by IPv6 relate to data security and the maximum number of user addresses. IPv6 increases the address space from 32 to 128 bits, providing for an unlimited (for all intents and purposes) number of networks and systems. It also supports quality of service (QoS) parameters for realtime audio and video. Originally called “IP Next Generation” (IPng), IPv6 is expected to slowly replace IPv4, with the two existing side by side for many years.
- As originally specified, Mobile IP for IPv6 (Mobile IPv6) was presumed to work for mobile nodes that were themselves also routers. Thus, the mobile router would be the point of attachment to the Internet for a collection of subnets, which then could be populated with either fixed or mobile nodes. Passengers on a ship or on a train are examples of mobile nodes that might rely on a mobile router, but clearly many fixed nodes on the ship or train might also have the same reliance. Recent concerns about address ownership have undermined the previous confidence about whether the base protocol specifications are appropriate for mobile routers as well as mobile nodes.
- The Network Mobility (NEMO) Working Group of the IETF is concerned with managing the mobility of an entire network, which changes, as a unit, its point of attachment to the Internet, and thus its reachability in the topology. The mobile network includes one or more mobile routers which connect it to the global Internet.
- A mobile network is assumed to be a leaf network (it may be complex with many leaf networks embedded in it, so that the Mobile Router would carry traffic to and from those networks), i.e. it will not carry transit traffic. However, it could be multihomed, either with a single mobile router that has multiple attachments to the internet, or by using multiple mobile routers that attach the mobile network to the Internet. The NEMO Working Group's approach assumes that the network's movement needs to be completely transparent to the nodes inside the mobile network. This assumption will be made to accommodate nodes inside the network that are not generally aware of mobility.
- A basic approach for network mobility support is for each mobile router to have a Home Agent (HA), and use bidirectional tunneling between the mobile router and HA to preserve session continuity while the mobile router moves. The mobile router will acquire a care-of address from its attachment point similar to what is done for mobile nodes using mobile IP. This approach allows nesting of mobile networks, since each mobile router will appear to its attachment point as a single node.
- With reference to
FIG. 1 , a block diagram illustrates the structure of a network according to the NEMO Working Group's described system in which amobile node 100 and amobile router 120 are in their home wireless network environment connecting to the Internet 10. Themobile node 100 is at home on its home link with itshome agent 110. Amobile router 120 is at its home wireless location. Themobile router 120 provides routing for an access link, on which there is a fixed node 130, and an access link for a fixed router 134. - The
mobile router 120, a gateway to the Internet 12, and a home agent 14 are routers that forward packets. They each may also use same dynamic routing protocol. There is acorrespondent node 102 for themobile node 100, and acorrespondent node 122 for the mobile router. - When a mobile node moves away from its home to link, it signals its
home agent 110, and itscorrespondent node 102 to provide its location and router on which themobile node 100 is a guest. Bindings are configured on the mobile node'shome agent 110 and correspondent node to send and receive data traffic to and from themobile node 100. Similarly, whenmobile router 120 moves away from its home link, it similarly updates its home agent 14, and itscorrespondent node 122 regarding its new location. - In the NEMO Working Group's system, both
mobile node 100 and themobile router 120 use the NEMO protocol (RFC 3963) along with Mobile IPv6, except that there are further implications to the packet forwarding implementation of themobile router 120 and home agent 14 for themobile router 120. Specifically, themobile router 120 and the home agent 14 for the mobile router use bidirectional tunnel to send and receive data between them. Themobile router 120 installs an encapsulation interface directed towards its home agent 14 when it detects that it is no longer within its home network. Through this interface themobile router 120 forwards (reverse-tunnels) all packets not originated from themobile router 120 towards its home agent 14. For packets originated from mobile router, the mobile router functions as if the it is a normalmobile node 100. The packets get forwarded on the visited link, except if the packets are targeted to the home link, then they get reverse-tunneled to home agent. Hence, when arriving at a visited link, themobile router 120 injects a default route and a network route of its home link, towards the reverse tunnel it creates pointing to its home agent 14, in addition to a default route to the a default router used by themobile router 120 on the visited link. If themobile router 120, home agent 14, and gateway at the visited link were running a dynamic routing protocol, themobile router 120 redirects control traffic of this protocol towards the home agent, tunneling these packets through the reverse tunnel pointing to home agent 14 for themobile router 120. The dynamic routing protocol updates the routing state between the gateway at the visited location, the home agent 14 for the router, and themobile router 120. - According to the NEMO Working Group system, if it is not desired that the
mobile router 120 runs a dynamic routing protocol, the home agent 14 keeps persistent information regarding the mobile router and its mobile network prefix(es), and injects routing entries into its table based on Binding Updates from themobile router 120. - There are some solutions being developed in conjunction with the NEMO Working Group that suggest assigning a prefix to a mobile router. An IETF draft for NEMO protocol, draft-droms-nemo-dhcpv6-pd-01.txt, “DHCPv6 Prefix Delegation for NEMO, by Ralph Droms and Pascal Thubert (Droms-Thubert) of Cisco describes the messaging format and protocol operations for transmitting one or more prefixes from a DHCPv6 server (or a home agent acting as a DHCPv6 Relay) to a Mobile Router. The approach described in Droms-Thubert uses a transformation on the lower 64 bits of a mobile network node's address in order to find the home address (HoA) of a mobile router. However, this, and other prior art approaches, have many shortcomings.
- For the most part, one or more of the approaches in the prior art only show the protocol operations for “delegating” a prefix from a DHCPv6 server to a Mobile Router. Although some of the draft approaches use the word “delegation,” they do not describe a true delegation, in terms of authorization to use a prefix. DHCP is a Configuration protocol and, in general relies, on the concept of “return routability”—meaning that if a mobile node can receive packets on a link to which it is connected, it is more-or-less authorized to use an address on that link.
- However, for an entire prefix, the same does not hold true. A router or entity that controls a superset of the prefixes assigned to the mobile router must explicitly allow the mobile router to use those prefixes, since the routing for the prefixes and all nodes contained there within can be manipulated and their traffic can be diverted, so the potential vulnerability to abuse is higher.
- Accordingly, authorization must happen at, or at least be transmitted to, the home agent. Since the DHCPv6 server is likely to be a separate box on the network, the home agent has no way of determining whether the mobile router then using the prefix is actually allowed to do so (and hence change the routing characteristics of the prefix).
- Finally, while the basic idea of using a prefix is referred to in the IETF NEMO signaling draft, there is insufficient detail regarding how the prefix is used. For example, there are no defined rules for how the home agent and mobile router process the signaling.
- According to a preferred embodiment of the invention, the home agent assigns prefixes by the protocol semantics as explicitly defined herein. A mobile router is authorized to use an assigned prefix for the duration of validity of the binding. The home agent, since it keeps track of the prefixes, can deduce when a request is received, and whether the relevant mobile router is the “owner” of the prefix being used.
- According to another preferred embodiment of the invention, a system is provided for prefix delegation with a pre-configured home agent, having a home address, and having a set of mobile router prefixes that are available to delegate to mobile routers. The transceiver of the home agent receives a prefix request option from a mobile router to request a prefix. The home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with the home address of the home agent, and sends the assigned prefix to the mobile router.
- In yet another preferred embodiment, the home agent assigns a prefix by combining a selected one of the set of mobile router prefixes with the home address of the mobile router, and sends the assigned prefix to the mobile router.
-
FIG. 1 is a block diagram that illustrates the structure of a prior art network according to the NEMO Working Group of the Internet Engineering Task Force; -
FIG. 2 is a flowchart illustrating the steps performed by a mobile router in one embodiment; -
FIG. 3 is a diagram illustrating a mobile network prefix, p, and a mobile network node address derived from it, according to one embodiment; -
FIG. 4 is a diagram illustrating an assigned mobile router prefix (HoA(p)) constructed from the mobile network node address ofFIG. 3 . -
FIG. 5 is a diagram representing an example provisioning table for a prefix request option and a table for prefix delegation option according to one embodiment; -
FIG. 6 is a flow diagram illustrating the steps preformed in a mobile phone embodiment; -
FIG. 7 is a flow diagram illustrating the steps performed when a packet destined for mobile network node in one embodiment; and -
FIG. 8 , a flow diagram illustrates the steps performed during mobile router operation in one embodiment. - This invention relates to mobile routers, or other nodes using the IPv6 Internet protocol for communication. In that respect, a particular embodiment described herein is for mobile routers using the network mobility (NEMO) IETF protocol. However, those skilled in the art can understand that the invention can also be used by non-mobile routers that need entire prefixes delegated to them, so that other nodes they serve can obtain addresses from that pool.
- 1. Prefix Delegation
- One embodiment uses prefix delegation. In this embodiment, the home agent is configured as described in the mobile IPv6 protocol, and also has functionality as described in NEMO IETF protocol, so that it can serve mobile routers and conform to the relevant signaling specifications. Thus, the home agent is be pre-configured with a set of IPv6 prefixes P{1}-P{n}, that are available to delegate to mobile routers. Delegation can be accomplished by, for example, manual configuration, routing protocol prefix assignment, or DHCPv6 prefix delegation, as defined in Droms-Thubert. The prefixes can be of any length. However, according to RFC 2373, which defines IPv6 addressing architecture, it is customary for delegated prefixes to be of length 48 bits, (i.e. for a global unicast address, the high-order 48 bits represent (FPI TLA ID |RES| NLA ID) and the next 12 bits, which would be assigned or further delegated by the mobile routers, are the Site-Level Aggregation identifier (SLA ID).
- Alternatively, the mobile router may be configured according to IETF Mobile Internet Protocol version 6 (MIPv6) and NEMO protocol. Using MIPv6 protocol, the mobile router and home agent may take advantage of pre-defined security associations used to protect their signaling. One such security association system is described in IETF RFC 3776, “Using IPsec to Protect Mobile IPv6 Signaling Between Mobile Nodes and Home Agents.”
- When the mobile router sends a binding update request to the home agent, the R bit is set to indicate that it is a router, as outlined in NEMO protocol. With reference to
FIG. 2 , a flowchart illustrates the steps performed by a mobile router in one embodiment. The mobile router sends a prefix request option, requesting a prefix, which may be of a selected length and type, and either public or private,step 200. The home agent then assigns it a prefix,step 202, either dynamically from a pool of prefixes, or statically through prior configuration, which will then be owned and usable by the mobile router's mobile network, for at least the length of the mobile router's binding. The home agent will include this information in a binding acknowledgment by providing a prefix delegation option,step 204. - An example mobile network prefix, p, and a mobile network node address derived from it, is shown in
FIG. 3 . If, for any reason, one prefix is insufficient, the home agent could also assign multiple prefixes by sending multiple prefix delegation options, and send alternate care of addresses, as defined by MIPv6. The mobile router's home address is address is appended with an SLA ID. The mobile network node's home address of 1:2:3:4: is then appended to configure the assigned prefix. -
FIG. 4 is a diagram illustrating an assigned mobile router prefix (HoA(p)) constructed from the high-order bits mobile network node address ofFIG. 3 . The high-order bits of the mobile router's home address (or prefix) (which has been assigned 3ffe:1200:3000:1234::) is combined with the mobile network node (destination) address (or prefix) to produce a mobile router prefix (HoA(p)). - 2. Routing to a Large Number of Mobile Routers Without Individual Routing Entries
- Once the home agent has assigned a prefix (HoA(p)) to the mobile router, there must also be a way to route traffic to the address of the mobile network prefix to the correct mobile router through a bi-directional tunnel. To achieve this, the home agent may have a routing table entry for each mobile network prefix. However, for a large number of mobile routers, and for many prefixes, this could soon produce a large, difficult to manage, routing table.
- In one embodiment, this problem is solved by assigning a home address to the mobile router that is mapped from the mobile network prefix. Hence, each time a packet destined for a home network prefix is received, the home address will map it to the HoA(p), without needing a routing table entry.
- To accomplish this structure, a prefix that is at least known within an individual provider or site used by mobile routers is used. This is the prefix to which mobile network prefix, p, is appended to create the mobile router prefix (HoA(p)). For most purposes, this prefix could be 64 bits.
- There are two options for creating and assigning the HoA(p). First, the mobile network prefix and home address may be both provisioned ahead of time and do not change. In this case, the HoA(p) is the mobile router's normal home address, which is generated by concatenating the mobile router prefix (MRP) for the home address, with the bits of the mobile network prefix, p, as the low-order host bytes of the home address. This method may preferable, since the home address already directly maps from the mobile network prefix. However, it may not be possible to provision a static prefix to each mobile router ahead of time.
- Thus, a different method may be used. If the mobile router has a normal home address, and needs to acquire a HoA(p) for the mobile router prefix being delegated to it, the home address sends a binding acknowledgment containing the new home address. The mobile router configures this as its (alternate) home address for the duration of the binding, and uses it to set up the bi-directional tunnel described in NEMO protocol. However, this leads to the issue of how to secure the signaling information, since the mobile router and home address do not have a pre-defined security association using the HoA(p). This issue is covered in the security section discussed below.
- With this second method, each pool of prefixes preferably has a defined prefix length. It is possible for the home address to delegate multiple pools of prefixes of different lengths, but it would be necessary keep track of the length of each prefix, for instance in a table, so that mapping can be performed from incoming packets to the mobile network node to the HoA(p) of the mobile router. To accomplish this, it is preferable to pre-define how many high order bits of the mobile network node address are the prefix, which are to be placed in the low-order bits of the HoA(p).
- 3. Security
- When a mobile router receives a new home address to use, and a prefix (HoA(p)), it must continue to secure its MIPv6 messaging with the home address. To accomplish this task, there are two preferred methods. Using a first method, the home agent creates a mapping from the HoA(p) to the home address. Whenever traffic is sent to a mobile router having a particular HoA(p), the security association for the home address is used. Similarly, when the mobile router begins using the HoA(p) to send data, it uses its existing security association based on the home address to secure the data packets.
- In an alternative preferred method, a session key may be derived from the key used for the normal home address. The session key (SK(p)) will have a fixed duration lifetime, and is based on the HoA(p). The home agent can send the SK(p) to the mobile router in an option in the base address, along with the HoA(p) and the mobile network prefix, p, options.
- It should be noted that, for the purposes of prefix ownership, the home agent preferably owns the pool of prefixes being delegated; meaning, it has administrative responsibility for advertising, and ownership rights over, the routing of, those prefixes. When this is established, the home agent delegates these rights to the mobile router for the duration of prefix ownership. The mobile router preferably always considers the prefix valid for the lifetime of the accepted binding, and no longer, just as the home address is preferably only used for the duration of said binding.
- However, in the case of a provisioned prefix (and corresponding home address), both of them are logically “owned” and valid for the mobile router to use, for however long this configuration information stays static in the provider's database (i.e. the home agent configuration or database it accesses for this configuration). However, again, for the purposes of protocol interaction and address usage, the mobile router preferably considers these addresses and prefixes as usable only during the lifetime of the valid binding. This is especially the case in embodiments wherein the mobile network prefix, p, and HoA(p) may be recycled with a different mobile router when the original binding expires.
- 4. Operation of Home Agent
- In one embodiment, as discussed above, the home agent has access to a provisioning table that lists prefixes to be delegated. Each group of addresses has the prefix length defined.
FIG. 5 is a diagram representing an example provisioning table for a prefix request option, and an example provisioning table for a prefix delegation option. As further discussed above, the home agent has pre-defined security associations with each mobile router. The only difference between the two tables is that the prefix delegation option contains a valid lifetime and a preferred lifetime added for the prefix. The valid lifetime contains the time, in seconds, that the prefix remains valid. The preferred lifetime contains the time, in seconds, that the prefix may be used to start new connections. - In both tables, a type field (bits 0-7) is used to designate the type of option (e.g., a type value of 7 may designate that the option is a prefix request option, and a type value of 8 may designate that the option is a prefix delegation option). A length prefix designates the length of the option (bits 8-15). A prefix type field (bits 16-23) may designate another value for the type of option (e.g., 1 may indicate no extra value type is intended, 1 may indicate that the option is global, 2 may indicate that the option is local, and 3 may indicate that the option is private). The prefix length (bits 24-31) may indicate the length of the prefix.
- With reference to
FIG. 6 , a flow diagram illustrates the steps preformed in an embodiment of the invention used by a cellular or mobile phone. Instep 600, when the customer signs an account agreement, their information enters a customer relation management (CRM) database. Part of this information includes information regarding the network settings for their mobile unit. Authorization for service usage is programmed into authorization servers,step 602. - At this time, a prefix is assigned to the user,
step 604. Referring back toFIG. 3 , for purposes of this example, the prefix comes from a pool of 40 bits, which is 3ffe:1200:30::, wherein each prefix in the pool is known to be 48 bits long (preferably, most delegated prefixes are this length), and it is represented as 3ffe:1200:3012::. The 64-bit prefix 3ffe:1200:3000:1234:: has been assigned to be the mobile router prefix. All mobile routers at this provider will use this prefix for at least part of their home address. This means the home address prefix (HoA(p)) is calculated to be 3ffe:1200:3000:1234:0000:3ffe:1200:3012. - The mobile network prefix and home address will be stored in the database, as well as an IPsec key. In
step 606, the mobile network prefix and the IPsec key are stored in the mobile router, which, in this case, is located in a mobile phone handset. - When the home agent boots up and initializes, it uses a database interface library to read configuration information from the customer database,
step 610. The home agent may load a table in memory with all of the mobile router home addresses, mobile node prefixes, security key etc. In one embodiment, the database is queried for this information each time an incoming binding is received. This has the disadvantage that it slows down the MIPv6 process, but has the advantage that the home agent doesn't need to store information about all subscribers, only a fraction of whom will actually have an active binding. To mitigate the disadvantage, one embodiment may optimize by caching binding information in the home agent's memory after successful binding establishment, so that for example, fast handovers would be possible without doing database queries at each handover. - Along with existing MIPv6 and NEMO protocol info, the home agent also loads the mobile router prefix from a stored configuration, as well as the prefix length information for the pool of prefixes as shown above.
- After these initial configuration steps, the mobile router at some point will send a binding update with the R bit set and the prefix request option,
step 610. As referred to above in the Security section, the home agent queries the database, finds the home address, mobile network prefix, and security key, along with any authorization info for mobile router services that are needed for authorization. When the home agent has verified that the binding update is authenticated and the mobile router is authorized to use a prefix, it sends a binding acknowledgement,step 612. Since home address is the HoA(p) in this described embodiment, it simply uses home address. It also includes a prefix designation option with the mobile router prefix as described above. - Next, the home agent sets up a bidirectional tunnel with the mobile router, and sets up routing table entries and binding cache entries according to MIPv6 and NEMO protocols. Whenever packets are received by the home agent, after checking the binding cache and route table, it performs an additional check to see whether the prefix of the IPv6 destination is part of its mobile network prefix pool(s). This feature is implemented by adding a route table entry for each prefix pool, and giving the routing table entry a special flag, rt_mnp, which signifies that the code should branch to calculate the HoA(p), and encapsulate this packet to the mobile router. Another prefix length field for the mobile network prefix is added. The route table entry may have the prefix length of the pool of addresses; however the new mobile network prefix length specifies the number of bits of prefix to take from the original packet to construct HoA(p)
- With reference bat to
FIG. 5 , in this example, a routing table entry for prefix 3ffe:1200:30:: is created with length 40, the special flag rt_mnp, and mobile network prefix length 48. The next hop address can be set to all 0s_it will be ignored anyway, as the next hop is calculated dynamically. Note that this prefix is length 40 and covers the entire prefix pool. However, the prefix length in the entry is length 48, because it refers to the length of the prefix that will be copied from the packet's destination address to create the HoA(p)—and that will include the additional byte that we assign to each mobile router's mobile network prefix. - With reference to
FIG. 7 , a diagram illustrates the steps performed when a packet destined for mobile network node 3ffe:1200:3012:c041:a:b:c:d arrives at the home address,step 700. Instep 702, the packet does not match any entries in the binding cache. A longest-prefix match in the prefix table will match the first 40 bytes of the destination address with the entry created as described above,step 704. - The software code then branches to the implementation code of the invention, which constructs a next hop address by starting with the mobile router prefix, 3ffe:1200:3000:1234::, step 706. The high 48 bits (we get this number from the mobile network prefix length in the router transport table entry) of the destination address is placed into the low 48 bits of the next hop address,
step 708. The intermediate bits, if any (in this example, 12), are all 0. - At this point, the HoA(p) of 3ffe:1200:3000:1234:0000:3ffe:1200:3012 has now been determined. It should be noted that, in this embodiment, this prefix is the same as the home address calculated when provisioning the account at creation time described above, since the same algorithm was used. However, this algorithm is implemented in the kernel (or possibly user space) and executes very quickly.
- Next, the packet is passed back through the forwarding engine,
step 710, which recognizes the tunnel entry that was set up during the binding phase (according to the NEMO spec), and puts the packet into the tunnel, to be received by the mobile router. The advantage of this approach is that there could be thousands of mobile routers, each with thousands of mobile network nodes below them. However, the home agent does not need millions of routing table entries—it only needs to query the database when a binding update is received, maintain a cache of reasonable size to facilitate fast handovers, and have one routing table entry for the pool of mobile network prefixes. - 5. Operation of Mobile Router
- With reference to
FIG. 8 , a flow diagram illustrates the steps performed during mobile router operation. Following the present mobile phone example, when the subscriber signs up for the account, the mobile phone the subscriber is provided (mobile router) is assigned in non-volatile memory the home address (e.g., 3ffe:1200:3000:1234:0000:3ffe:1200:3012), and shared secret for IPsec communication, along with other parameters needed by MIPv6 and NEMO protocol,step 800. - When the phone is turned on, any cellular operations to set up an IPv6 channel happen first,
step 802. Then, a binding update is constructed according to MIPv6 and NEMO protocol,step 804. Finally, the prefix request option is added to the binding update request,step 806. The mobile router receives back a binding update acknowledgement with a prefix delegation option containing the prefix 3ffe:1200:3012,step 808. In one embodiment, an optimization of the system could comprise sending the prefix length, even though the mobile router already has the prefix stored inside of the home address, and it could be derived. - The mobile router now appends the SLA ID, in this case c041, to the prefix,
step 810, and advertises it as a prefix oflength 64 in its router advertisements,step 812. The mobile network node picks up this IPv6 address and configures its address using an ingress interface identifier of 1:2:3:4 and gets the address 3ffe:1200:3012:c041:a:b:c:d,step 814. - The mobile network node starts sending traffic to an IPv6-capable correspondent node in the Internet (note that neither the mobile network node nor the correspondent node need be aware of the mobility of the mobile router). This causes the routing steps described above with respect to home agent operation. The home agent encapsulates the packet to the mobile router's egress interface. When the mobile router receives it, it de-encapsulates it according to the NEMO protocol, and sends it to the ingress interface where the mobile network node receives it.
Claims (20)
1. A method for prefix delegation, comprising:
pre-configuring a home agent, having a home address, with a set of mobile router prefixes that are available to delegate;
receiving a prefix request option from a mobile router to request a prefix, the mobile router having a home address; and
assigning a prefix,
wherein the step of assigning the prefix comprises combining a selected one of the set of mobile router prefixes with at least a part of one of said home addresses.
2. The method of claim 1 , wherein the one home address is the home address of the home agent.
3. The method of claim 1 , wherein the one home address is the home address of the mobile router.
4. The method of claim 1 , wherein the mobile router prefixes are defined manually.
5. The method of claim 1 , wherein mobile router prefixes are defined according to MIPv6 protocol.
6. The method of claim 1 , wherein mobile router prefixes are defined according to NEMO protocol.
7. The method of claim 1 , further comprising receiving a packet for a router, checking for whether the router is a mobile router, and if the router is a mobile router, determining the assigned prefix for the mobile router by combining the selected one of the set of mobile router prefixes with the at least part of the home address, encapsulating the packet with the assigned prefix, and forwarding the encapsulated packet into a tunnel for reception by the mobile router.
8. A mobile router, comprising
a home address for the mobile router;
a transceiver for sending a prefix request option to a home agent to request a prefix, the home agent having a home address, the transceiver further for receiving a prefix delegation containing an assigned prefix; and
a processor for configuring the mobile router for using the assigned prefix, wherein the assigned prefix comprises a selected one of a set of pre-configured mobile router prefixes combined with at least a part of one of said home addresses home address.
9. The mobile router of claim 8 , wherein the one home address is the home address of the home agent.
10. The mobile router of claim 8 , wherein the one home address is the home address of the mobile router.
11. The mobile router of claim 8 , wherein the mobile router prefixes are defined manually.
12. The mobile router of claim 8 , wherein mobile router prefixes are defined according to MIPv6 protocol.
13. The mobile router of claim 8 , wherein mobile router prefixes are defined according to NEMO protocol.
14. An apparatus for prefix delegation, comprising:
a home agent, having a home address and a set of mobile router prefixes that are available to delegate to mobile routers;
a transceiver for receiving a prefix request option from a mobile router to request a prefix, the mobile router having a home address, the transceiver further for sending the assigning a prefix; and
a processor to assign the prefix by combining a selected one of the set of mobile router prefixes with at least of part of one of said home addresses.
15. The apparatus of claim 14 , wherein the one home address is the home address of the home agent.
16. The apparatus of claim 14 , wherein the one home address is the home address of the mobile router.
17. The apparatus of claim 14 , wherein the mobile router prefixes are defined manually.
18. The apparatus of claim 14 , wherein mobile router prefixes are defined according to MIPv6 protocol.
19. The apparatus of claim 14 , wherein mobile router prefixes are defined according to NEMO protocol.
20. An apparatus for prefix delegation, comprising:
means for providing a home address and a set of mobile router prefixes that are available to delegate to mobile routers;
means for receiving a prefix request option from a mobile router to request a prefix, the mobile router having a home address, the means for receiving further for sending the assigning a prefix; and
means for assigning the prefix by combining a selected one of the set of mobile router prefixes with at least of part of one of said home addresses.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/099,929 US7505442B2 (en) | 2005-04-05 | 2005-04-05 | Routing transformation, security, and authorization for delegated prefixes |
PCT/IB2006/000578 WO2006106389A1 (en) | 2005-04-05 | 2006-03-15 | Routing transformation, security, and authorization for delegated prefixes |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/099,929 US7505442B2 (en) | 2005-04-05 | 2005-04-05 | Routing transformation, security, and authorization for delegated prefixes |
Publications (2)
Publication Number | Publication Date |
---|---|
US20060221921A1 true US20060221921A1 (en) | 2006-10-05 |
US7505442B2 US7505442B2 (en) | 2009-03-17 |
Family
ID=37070350
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US11/099,929 Expired - Fee Related US7505442B2 (en) | 2005-04-05 | 2005-04-05 | Routing transformation, security, and authorization for delegated prefixes |
Country Status (2)
Country | Link |
---|---|
US (1) | US7505442B2 (en) |
WO (1) | WO2006106389A1 (en) |
Cited By (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060029014A1 (en) * | 2004-08-04 | 2006-02-09 | Jagadish Maturi | System and method for establishing dynamic home agent addresses and home addresses using the mobile IPv6 protocol |
US20060274700A1 (en) * | 2005-06-02 | 2006-12-07 | Christophe Janneteau | Autonomous mode for a plurality of nested mobile networks |
US20070268919A1 (en) * | 2006-05-19 | 2007-11-22 | Futurewei Technologies, Inc. | Using DHCPv6 and AAA for Mobile Station Prefix Delegation and Enhanced Neighbor Discovery |
EP2001187A1 (en) * | 2007-06-06 | 2008-12-10 | Nokia Siemens Networks Oy | Method of and system for delivering data packets in a data network |
US20090024732A1 (en) * | 2006-03-10 | 2009-01-22 | Matsushita Electric Industrial Co., Ltd. | Apparatus for prefix control and apparatus for prefix choice |
EP2078354A1 (en) * | 2006-10-13 | 2009-07-15 | Samsung Electronics Co., Ltd. | Mobility supporting method of mobile terminal based on prefix binding and mobility supporting system using the method |
US20090207821A1 (en) * | 2006-06-20 | 2009-08-20 | Johan Rune | Maintaining prefix consistency in dynamic moving networks |
US20090225761A1 (en) * | 2008-03-05 | 2009-09-10 | Futurewei Technologies, Inc. | Prefix Delegation Support for Mobile Networks |
WO2009120666A1 (en) * | 2008-03-24 | 2009-10-01 | Qualcomm Incorporated | Dynamic home network assignment |
US20090285215A1 (en) * | 2008-05-13 | 2009-11-19 | Futurewei Technologies, Inc. | Internet Protocol Version Six (IPv6) Addressing and Packet Filtering in Broadband Networks |
US20100246484A1 (en) * | 2006-08-24 | 2010-09-30 | Panasonic Corporation | Communication management apparatus and location management apparatus |
US20110075673A1 (en) * | 2009-09-25 | 2011-03-31 | Hardie Edward T L | Methods and Apparatus for Distribution of IP Layer Routing Information in Peer-to-Peer Overlay Networks |
US20120314617A1 (en) * | 2011-06-09 | 2012-12-13 | Time Warner Cable Inc. | Techniques for prefix subnetting |
US20130170400A1 (en) * | 2005-05-16 | 2013-07-04 | Rockstar Consortium Us Lp | Dynamic Hierarchical Address Resource Management Architecture, Method and Apparatus |
US20150205991A1 (en) * | 2014-01-22 | 2015-07-23 | Electronics And Telecommunications Research Institute | Internet-of-things system for public transportation service and method of operating same |
CN108989216A (en) * | 2017-05-31 | 2018-12-11 | 南宁富桂精密工业有限公司 | Route prefix processing method, root router and computer readable storage medium |
CN108989215A (en) * | 2017-05-31 | 2018-12-11 | 南宁富桂精密工业有限公司 | Route prefix processing method, root router and computer readable storage medium |
US10992709B2 (en) * | 2015-07-28 | 2021-04-27 | Citrix Systems, Inc. | Efficient use of IPsec tunnels in multi-path environment |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7633921B2 (en) * | 2006-11-21 | 2009-12-15 | Cisco Technology, Inc. | Mobile network automatic tunnels |
JPWO2011001594A1 (en) * | 2009-06-29 | 2012-12-10 | パナソニック株式会社 | Redirection method, redirection system, mobile node, home agent and proxy node |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030117965A1 (en) * | 2001-11-14 | 2003-06-26 | Nokia Corporation | Mobile router support for IPv6 |
US20040114554A1 (en) * | 2001-01-18 | 2004-06-17 | Ichiro Okajima | Packet communication systems |
US20040196854A1 (en) * | 2003-04-02 | 2004-10-07 | Pascal Thubert | Arrangement in a router for generating a route based on a pattern of a received packet |
US20040246931A1 (en) * | 2003-06-05 | 2004-12-09 | Pascal Thubert | Arrangement in a router of a mobile network for generating a local router prefix for anonymous route connections |
US20050058100A1 (en) * | 2003-09-15 | 2005-03-17 | Samsung Electronics Co., Ltd. | Method for optimizing nested tunnels using nested path information in a mobile network |
US20050152298A1 (en) * | 2003-03-10 | 2005-07-14 | Pascal Thubert | Arrangement for traversing an IPv4 network by IPv6 mobile nodes |
US7031328B2 (en) * | 2003-03-10 | 2006-04-18 | Cisco Technology, Inc. | Arrangement for traversing an IPv4 network by IPv6 mobile routers |
US7039035B2 (en) * | 2003-11-10 | 2006-05-02 | Cisco Technology, Inc. | Arrangement in an access router for optimizing mobile router connections based on delegated network prefixes |
US7149225B2 (en) * | 2003-03-10 | 2006-12-12 | Cisco Technology, Inc. | Arrangement for traversing an IPv4 network by IPv6 mobile nodes via a mobility anchor point |
-
2005
- 2005-04-05 US US11/099,929 patent/US7505442B2/en not_active Expired - Fee Related
-
2006
- 2006-03-15 WO PCT/IB2006/000578 patent/WO2006106389A1/en not_active Application Discontinuation
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040114554A1 (en) * | 2001-01-18 | 2004-06-17 | Ichiro Okajima | Packet communication systems |
US20030117965A1 (en) * | 2001-11-14 | 2003-06-26 | Nokia Corporation | Mobile router support for IPv6 |
US20050152298A1 (en) * | 2003-03-10 | 2005-07-14 | Pascal Thubert | Arrangement for traversing an IPv4 network by IPv6 mobile nodes |
US7031328B2 (en) * | 2003-03-10 | 2006-04-18 | Cisco Technology, Inc. | Arrangement for traversing an IPv4 network by IPv6 mobile routers |
US20060120382A1 (en) * | 2003-03-10 | 2006-06-08 | Pascal Thubert | Arrangement for traversing an IPv4 network by IPv6 mobile routers |
US7149225B2 (en) * | 2003-03-10 | 2006-12-12 | Cisco Technology, Inc. | Arrangement for traversing an IPv4 network by IPv6 mobile nodes via a mobility anchor point |
US20040196854A1 (en) * | 2003-04-02 | 2004-10-07 | Pascal Thubert | Arrangement in a router for generating a route based on a pattern of a received packet |
US20040246931A1 (en) * | 2003-06-05 | 2004-12-09 | Pascal Thubert | Arrangement in a router of a mobile network for generating a local router prefix for anonymous route connections |
US20050058100A1 (en) * | 2003-09-15 | 2005-03-17 | Samsung Electronics Co., Ltd. | Method for optimizing nested tunnels using nested path information in a mobile network |
US7039035B2 (en) * | 2003-11-10 | 2006-05-02 | Cisco Technology, Inc. | Arrangement in an access router for optimizing mobile router connections based on delegated network prefixes |
Cited By (28)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060029014A1 (en) * | 2004-08-04 | 2006-02-09 | Jagadish Maturi | System and method for establishing dynamic home agent addresses and home addresses using the mobile IPv6 protocol |
US20130170400A1 (en) * | 2005-05-16 | 2013-07-04 | Rockstar Consortium Us Lp | Dynamic Hierarchical Address Resource Management Architecture, Method and Apparatus |
US20060274700A1 (en) * | 2005-06-02 | 2006-12-07 | Christophe Janneteau | Autonomous mode for a plurality of nested mobile networks |
US20090024732A1 (en) * | 2006-03-10 | 2009-01-22 | Matsushita Electric Industrial Co., Ltd. | Apparatus for prefix control and apparatus for prefix choice |
US20070268919A1 (en) * | 2006-05-19 | 2007-11-22 | Futurewei Technologies, Inc. | Using DHCPv6 and AAA for Mobile Station Prefix Delegation and Enhanced Neighbor Discovery |
US8625609B2 (en) | 2006-05-19 | 2014-01-07 | Futurewei Technologies Inc. | Using DHCPv6 and AAA for mobile station prefix delegation and enhanced neighbor discovery |
US8284743B2 (en) * | 2006-06-20 | 2012-10-09 | Telefonaktiebolaget Lm Ericsson (Publ) | Maintaining prefix consistency in dynamic moving networks |
US20090207821A1 (en) * | 2006-06-20 | 2009-08-20 | Johan Rune | Maintaining prefix consistency in dynamic moving networks |
US20100246484A1 (en) * | 2006-08-24 | 2010-09-30 | Panasonic Corporation | Communication management apparatus and location management apparatus |
EP2078354A4 (en) * | 2006-10-13 | 2011-11-16 | Samsung Electronics Co Ltd | Mobility supporting method of mobile terminal based on prefix binding and mobility supporting system using the method |
EP2078354A1 (en) * | 2006-10-13 | 2009-07-15 | Samsung Electronics Co., Ltd. | Mobility supporting method of mobile terminal based on prefix binding and mobility supporting system using the method |
EP2001187A1 (en) * | 2007-06-06 | 2008-12-10 | Nokia Siemens Networks Oy | Method of and system for delivering data packets in a data network |
US20090225761A1 (en) * | 2008-03-05 | 2009-09-10 | Futurewei Technologies, Inc. | Prefix Delegation Support for Mobile Networks |
US8493910B2 (en) * | 2008-03-05 | 2013-07-23 | Futurewei Technologies, Inc. | Prefix delegation support for mobile networks |
WO2009120666A1 (en) * | 2008-03-24 | 2009-10-01 | Qualcomm Incorporated | Dynamic home network assignment |
KR101227940B1 (en) | 2008-03-24 | 2013-01-30 | 콸콤 인코포레이티드 | Dynamic home network assignment |
RU2481730C2 (en) * | 2008-03-24 | 2013-05-10 | Квэлкомм Инкорпорейтед | Dynamic home network assignment |
US8953601B2 (en) * | 2008-05-13 | 2015-02-10 | Futurewei Technologies, Inc. | Internet protocol version six (IPv6) addressing and packet filtering in broadband networks |
US20090285215A1 (en) * | 2008-05-13 | 2009-11-19 | Futurewei Technologies, Inc. | Internet Protocol Version Six (IPv6) Addressing and Packet Filtering in Broadband Networks |
US20110075673A1 (en) * | 2009-09-25 | 2011-03-31 | Hardie Edward T L | Methods and Apparatus for Distribution of IP Layer Routing Information in Peer-to-Peer Overlay Networks |
US8724513B2 (en) | 2009-09-25 | 2014-05-13 | Qualcomm Incorporated | Methods and apparatus for distribution of IP layer routing information in peer-to-peer overlay networks |
US20120314617A1 (en) * | 2011-06-09 | 2012-12-13 | Time Warner Cable Inc. | Techniques for prefix subnetting |
US8995360B2 (en) * | 2011-06-09 | 2015-03-31 | Time Warner Cable Enterprises Llc | Techniques for prefix subnetting |
US20150205991A1 (en) * | 2014-01-22 | 2015-07-23 | Electronics And Telecommunications Research Institute | Internet-of-things system for public transportation service and method of operating same |
US9723428B2 (en) * | 2014-01-22 | 2017-08-01 | Electronics And Telecommunications Research Institute | Internet-of-things system for public transportation service and method of operating same |
US10992709B2 (en) * | 2015-07-28 | 2021-04-27 | Citrix Systems, Inc. | Efficient use of IPsec tunnels in multi-path environment |
CN108989216A (en) * | 2017-05-31 | 2018-12-11 | 南宁富桂精密工业有限公司 | Route prefix processing method, root router and computer readable storage medium |
CN108989215A (en) * | 2017-05-31 | 2018-12-11 | 南宁富桂精密工业有限公司 | Route prefix processing method, root router and computer readable storage medium |
Also Published As
Publication number | Publication date |
---|---|
US7505442B2 (en) | 2009-03-17 |
WO2006106389A1 (en) | 2006-10-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7505442B2 (en) | Routing transformation, security, and authorization for delegated prefixes | |
US7940769B2 (en) | Maintaining secrecy of assigned unique local addresses for IPV6 nodes within a prescribed site during access of a wide area network | |
US7564824B2 (en) | Methods and apparatus for aggregating MIP and AAA messages | |
JP4011548B2 (en) | IPv6 mobile router support | |
US7031328B2 (en) | Arrangement for traversing an IPv4 network by IPv6 mobile routers | |
JP3924502B2 (en) | Mobile communication method and mobile communication system | |
US7039035B2 (en) | Arrangement in an access router for optimizing mobile router connections based on delegated network prefixes | |
US8594073B2 (en) | Method and apparatus for roaming between communications networks | |
US7808970B2 (en) | Method of dynamically assigning mobility configuration parameters for mobile entities | |
US20060062248A1 (en) | Providing connection between networks using different protocols | |
US20040148428A1 (en) | Methods and apparatus for supporting an internet protocol (IP) version independent mobility management system | |
US20050226180A1 (en) | Maintaining reachability of a mobile node | |
EP1516472B1 (en) | Connection of next generation mobile nodes across previous generation networks to next generation networks | |
US20040019664A1 (en) | Method and system for discovering a network element in a network such as an agent in an IP network | |
JP4468968B2 (en) | Mobile node communication method and mobile node | |
Liu | Support mobile IPv6 in IPv4 domains | |
JP4022226B2 (en) | Router | |
JP4022227B2 (en) | Mobile node | |
Bernardos et al. | RFC 8885: Proxy Mobile IPv6 Extensions for Distributed Mobility Management | |
van Sebille et al. | o vodafone | |
Tsukada et al. | Basic and Advanced features of IPv6 over C2C NET |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: NOKIA CORPORATION, FINLAND Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:KNIVETON, TIMOTHY J.;REEL/FRAME:016455/0452 Effective date: 20050401 |
|
REMI | Maintenance fee reminder mailed | ||
LAPS | Lapse for failure to pay maintenance fees | ||
STCH | Information on status: patent discontinuation |
Free format text: PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362 |
|
FP | Lapsed due to failure to pay maintenance fee |
Effective date: 20130317 |